vendor/eckinox/security-bundle/src/Controller/ResetPasswordController.php line 52

Open in your IDE?
  1. <?php
  3. namespace Eckinox\SecurityBundle\Controller;
  5. use App\Entity\Security\User;
  6. use App\Entity\Security\AppUser;
  7. use Eckinox\SecurityBundle\Form\ChangePasswordFormType;
  8. use Eckinox\SecurityBundle\Form\ResetPasswordRequestFormType;
  9. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  10. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  11. use Symfony\Component\HttpFoundation\RedirectResponse;
  12. use Symfony\Component\HttpFoundation\Request;
  13. use Symfony\Component\HttpFoundation\RequestStack;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\Mailer\MailerInterface;
  16. use Symfony\Component\Mime\Address;
  17. use Symfony\Component\Routing\Annotation\Route;
  18. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  19. use SymfonyCasts\Bundle\ResetPassword\Controller\ResetPasswordControllerTrait;
  20. use SymfonyCasts\Bundle\ResetPassword\Exception\ResetPasswordExceptionInterface;
  21. use SymfonyCasts\Bundle\ResetPassword\ResetPasswordHelperInterface;
  22. use Symfony\Contracts\Translation\TranslatorInterface;
  23. use Twig\Environment;
  25. class ResetPasswordController extends AbstractController
  26. {
  27.     use ResetPasswordControllerTrait;
  29.     /**
  30.      * @var UserPasswordHasherInterface
  31.      */
  32.     private $passwordHasher;
  34.     /**
  35.      * @var TranslatorInterface
  36.      */
  37.     private $translator;
  39.     public function __construct(TranslatorInterface $translatorRequestStack $requestStackEnvironment $twigResetPasswordHelperInterface $userResetPasswordHelperResetPasswordHelperInterface $appUserResetPasswordHelper)
  40.     {
  41.         $this->translator $translator;
  42.         $this->request $requestStack->getCurrentRequest();
  43.         $this->firewall $this->request->attributes->get('_firewall_context');
  44.         $this->twig $twig->getLoader();
  45.         $this->userClass $this->firewall == 'security.firewall.map.context.app' AppUser::class : User::class;
  46.         $this->resetPasswordHelper $this->firewall == 'security.firewall.map.context.app' $appUserResetPasswordHelper $userResetPasswordHelper;
  47.     }
  49.     /**
  50.      * Display & process form to request a password reset.
  51.      */
  52.     public function request(MailerInterface $mailer): Response
  53.     {
  54.         $template $this->firewall == 'security.firewall.map.context.app' && $this->twig->exists('@EckinoxSecurity/app_reset_password/request.html.twig') ? '@EckinoxSecurity/app_reset_password/request.html.twig' '@EckinoxSecurity/reset_password/request.html.twig';
  56.         $form $this->createForm(ResetPasswordRequestFormType::class);
  57.         $form->handleRequest($this->request);
  59.         if ($form->isSubmitted() && $form->isValid()) {
  60.             return $this->processSendingPasswordResetEmail(
  61.                 $form->get('email')->getData(),
  62.                 $mailer
  63.             );
  64.         }
  66.         return $this->render($template, [
  67.             'requestForm' => $form->createView(),
  68.         ]);
  69.     }
  71.     /**
  72.      * Confirmation page after a user has requested a password reset.
  73.      */
  74.     public function checkEmail(): Response
  75.     {
  76.         $redirectRouteParameter $this->firewall == 'security.firewall.map.context.app' 'eckinox_security_app_forgot_password_request' 'eckinox_security_forgot_password_request';
  77.         $template $this->firewall == 'security.firewall.map.context.app' && $this->twig->exists('@EckinoxSecurity/app_reset_password/check_email.html.twig') ? '@EckinoxSecurity/app_reset_password/check_email.html.twig' '@EckinoxSecurity/reset_password/check_email.html.twig';
  79.         // We prevent users from directly accessing this page
  80.         if (null === ($resetToken $this->getTokenObjectFromSession())) {
  81.             return $this->redirectToRoute($redirectRouteParameter);
  82.         }
  84.         return $this->render($template, [
  85.             'resetToken' => $resetToken,
  86.         ]);
  87.     }
  89.     /**
  90.      * Validates and process the reset URL that the user clicked in their email.
  91.      */
  92.     public function reset(UserPasswordHasherInterface $passwordHasherstring $token null): Response
  93.     {
  94.         $redirectResetRouteParameter $this->firewall == 'security.firewall.map.context.app' 'eckinox_security_app_reset_password' 'eckinox_security_reset_password';
  95.         $redirectForgotRouteParameter $this->firewall == 'security.firewall.map.context.app' 'eckinox_security_app_forgot_password_request' 'eckinox_security_forgot_password_request';
  96.         $redirectLoginRouteParameter $this->firewall == 'security.firewall.map.context.app' 'eckinox_security_app_login' 'eckinox_security_login';
  97.         $template $this->firewall == 'security.firewall.map.context.app' && $this->twig->exists('@EckinoxSecurity/app_reset_password/reset.html.twig') ? '@EckinoxSecurity/app_reset_password/reset.html.twig' '@EckinoxSecurity/reset_password/reset.html.twig';
  99.         if ($token) {
  100.             // We store the token in session and remove it from the URL, to avoid the URL being
  101.             // loaded in a browser and potentially leaking the token to 3rd party JavaScript.
  102.             $this->storeTokenInSession($token);
  104.             return $this->redirectToRoute($redirectResetRouteParameter);
  105.         }
  107.         $token $this->getTokenFromSession();
  108.         if (null === $token) {
  109.             throw $this->createNotFoundException('No reset password token found in the URL or in the session.');
  110.         }
  112.         try {
  113.             $user $this->resetPasswordHelper->validateTokenAndFetchUser($token);
  114.         } catch (ResetPasswordExceptionInterface $e) {
  115.             $this->addFlash('reset_password_error'sprintf(
  116.                 'There was a problem validating your reset request - %s',
  117.                 $e->getReason()
  118.             ));
  120.             return $this->redirectToRoute($redirectForgotRouteParameter);
  121.         }
  123.         $form $this->createForm(ChangePasswordFormType::class);
  124.         $form->handleRequest($this->request);
  126.         if ($form->isSubmitted() && $form->isValid()) {
  127.             $this->resetPasswordHelper->removeResetRequest($token);
  129.             $encodedPassword $passwordHasher->hashPassword(
  130.                 $user,
  131.                 $form->get('plainPassword')->getData()
  132.             );
  134.             $user->setPassword($encodedPassword);
  135.             $this->getDoctrine()->getManager()->flush();
  137.             $this->cleanSessionAfterReset();
  138.             $this->addFlash('success'$this->translator->trans('eckinox_security.messages.your_password_has_been_reset'));
  140.             return $this->redirectToRoute($redirectLoginRouteParameter);
  141.         }
  143.         return $this->render($template, [
  144.             'resetForm' => $form->createView(),
  145.         ]);
  146.     }
  148.     private function processSendingPasswordResetEmail(string $emailFormDataMailerInterface $mailer): RedirectResponse
  149.     {
  150.         $redirectRouteParameter $this->firewall == 'security.firewall.map.context.app' 'eckinox_security_app_forgot_password_request' 'eckinox_security_forgot_password_request';
  151.         $redirectCheckEmailRouteParameter $this->firewall == 'security.firewall.map.context.app' 'eckinox_security_app_check_email' 'eckinox_security_check_email';
  152.         $resetPasswordRouteParameter $this->firewall == 'security.firewall.map.context.app' 'eckinox_security_app_reset_password' 'eckinox_security_reset_password';
  153.         $template $this->firewall == 'security.firewall.map.context.app' && $this->twig->exists('@EckinoxSecurity/app_reset_password/email.html.twig') ? '@EckinoxSecurity/app_reset_password/email.html.twig' '@EckinoxSecurity/reset_password/email.html.twig';
  155.         $user $this->getDoctrine()->getRepository($this->userClass)->findOneBy([
  156.             'email' => $emailFormData,
  157.         ]);
  159.         // Do not reveal whether a user account was found or not.
  160.         if (!$user) {
  161.             return $this->redirectToRoute($redirectCheckEmailRouteParameter);
  162.         }
  164.         try {
  165.             $resetToken $this->resetPasswordHelper->generateResetToken($user);
  166.         } catch (ResetPasswordExceptionInterface $e) {
  167.             // If you want to tell the user why a reset email was not sent, uncomment
  168.             // the lines below and change the redirect to 'eckinox_security_forgot_password_request'.
  169.             // Caution: This may reveal if a user is registered or not.
  170.             $this->addFlash('reset_password_error'$this->translator->trans('eckinox_security.messages.' $e->getReason()));
  172.             return $this->redirectToRoute($redirectRouteParameter);
  173.         }
  175.         $email = (new TemplatedEmail())
  176.             ->from(new Address($this->getParameter('eckinox_security.sender_email'), $this->getParameter('eckinox_security.sender_name')))
  177.             ->to($user->getEmail())
  178.             ->subject($this->translator->trans('eckinox_security.messages.your_password_reset_request'))
  179.             ->htmlTemplate($template)
  180.             ->context([
  181.                 'resetToken' => $resetToken,
  182.                 'reset_password_route' => $resetPasswordRouteParameter
  183.             ]);
  185.         $mailer->send($email);
  187.         $this->setTokenObjectInSession($resetToken);
  189.         return $this->redirectToRoute($redirectCheckEmailRouteParameter);
  190.     }
  191. }